RSS 2 projects tagged "sandbox"

Download Website Updated 13 Aug 2012 sydbox

Screenshot
Pop 116.55
Vit 5.28

sydbox is a ptrace-based sandbox implementation. It intercepts system calls, checks for allowed filesystem prefixes, and denies them when checks fail. It has basic support for disallowing network connections. It has basic support to sandbox execve calls. It is based in part on catbox and strace.

No download Website Updated 12 Dec 2009 FBAC-LSM

Screenshot
Pop 21.49
Vit 1.00

FBAC-LSM is a security mechanism for Linux which retricts applications based on the features they provide, such as "Web Browser" or "Image Editor". By restricting the actions of applications, the damage which can be caused by malware or software vulnerabilities can be significantly reduced. Reusable policy abstractions, known as functionalities, can be used to grant the authority to perform high level features (for example using the Web_Browser functionality) or lower level features (such as using the HTTP_Client functionality) or to grant privileges to access any specified resources. Functionalities are parameterized, which allows them to be adapted to the needs of specific applications. Functionalities are also hierarchical; that is, functionalities can contain other functionalities.

Screenshot

Project Spotlight

beets

A media library management system for obsessive-compulsive music geeks.

Screenshot

Project Spotlight

libdwarf-dwarfdump

A library for DWARF debug information reading/writing.